Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cummings.com.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
48:87:75:25:9F:8B:9B:96:30:56:BD:AE:EB:69:23:DF:94:41:46:7B:F4:D1:94:27:0E:E8:CA:9D:20:7B:F8:BA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
comercie.com
*.comercie.com
*.bbs.comercie.com
*.emv1.comercie.com
*.test.comercie.com
afsana.com
*.afsana.com
*.spp.afsana.com
applebeees.com
*.applebeees.com
*.cicd.applebeees.com
*.jocuri.applebeees.com
*.m.applebeees.com
*.neighborfeeback.applebeees.com
*.neighborfeedback.applebeees.com
*.neighborhoodfeedback.applebeees.com
*.nelghborfeedback.applebeees.com
*.pljqhxkv.applebeees.com
*.random.applebeees.com
*.school.applebeees.com
*.ww16.applebeees.com
*.ww38.applebeees.com
autocarelive.com
*.autocarelive.com
*.superset.autocarelive.com
*.api.besthearing.com
*.assets.besthearing.com
besthearing.com
*.besthearing.com
*.emv1.besthearing.com
*.m.besthearing.com
*.ww1.besthearing.com
*.xbxuyqam.besthearing.com
corti-organ.de
*.corti-organ.de
cummings.com.au
*.cummings.com.au
*.shop.cummings.com.au
*.ww8.cummings.com.au
eey.fi
*.eey.fi
*.www.eey.fi
*.e.flynn.net.au
flynn.net.au
*.flynn.net.au
*.www.flynn.net.au
ganashoki.com
*.ganashoki.com
*.rds.ganashoki.com
impexsolutionsworld.com
*.impexsolutionsworld.com
*.soft.impexsolutionsworld.com
*.bookings.laconciergerie.com
laconciergerie.com
*.laconciergerie.com
maharastra.com
*.maharastra.com
*.zonashik.maharastra.com
*.atxqkapi.myshoe.us
myshoe.us
*.myshoe.us
*.test.myshoe.us
*.api.patrickspest.biz
patrickspest.biz
*.patrickspest.biz
*.test.patrickspest.biz
*.members.reodx.org
reodx.org
*.reodx.org
*.mail.screenliteagency.co.uk
screenliteagency.co.uk
*.screenliteagency.co.uk
*.ww25.screenliteagency.co.uk
seohackers.com
*.seohackers.com
*.p.xn--ettn6h.com
xn--ettn6h.com
*.xn--ettn6h.com
*.ww25.yamispicks.com
yamispicks.com
*.yamispicks.com
*.m.yaya5.com
*.wan.yaya5.com
*.ww25.yaya5.com
yaya5.com
*.yaya5.com
*.m.yildizmuhendislik.com
*.ww25.yildizmuhendislik.com
yildizmuhendislik.com
*.yildizmuhendislik.com
Other domains in certificate